CVE-2026-10106

Summary

Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x <= 10.11.19 fail to verify that the channel referenced in an action cookie matches the channel of the target post, which allows an authenticated user without access to a private channel to trigger interactive post actions on posts in that channel via a cookie obtained from any accessible channel.. Mattermost Advisory ID: MMSA-2026-00690

Affected Software

VendorProductVersion RangeStatus
MattermostMattermost11.7.0 <= 11.7.2affected
MattermostMattermost11.6.0 <= 11.6.4affected
MattermostMattermost10.11.0 <= 10.11.19affected
MattermostMattermost11.8.0unaffected
MattermostMattermost11.7.3unaffected
MattermostMattermost11.6.5unaffected
MattermostMattermost10.11.20unaffected

Weaknesses

  • CWE-863: CWE-863: Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References